|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Stephen Fewer (stephen_fewer
harmonysecurity.com)
Date: Fri Oct 31 2008 - 12:58:02 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello, Just released a short paper on Reflective DLL Injection.
Abstract: Reflective DLL injection is a library injection technique in
which the concept of reflective programming is employed to perform the
loading of a library from memory into a host process. As such the
library is responsible for loading itself by implementing a minimal
Portable Executable (PE) loader.
You can download the paper here:
http://www.harmonysecurity.com/files/HS-P005_ReflectiveDllInjection.pdf
And the PoC code here:
http://www.harmonysecurity.com/files/ReflectiveDllInjection_v1.0.zip
Support for Reflective DLL Injection has been added to Metasploit in the
form of a payload stage and a modified VNC DLL (both are currently in
the development tree).
Cheers
Stephen Fewer
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (MingW32)
iEYEARECAAYFAkkLRyoACgkQQIrmi1YdFr4jOgCfRcZn+XKIS36fzTOPhIcAfiQj
e0IAoLmUxJqKZaUiticQ5nSCVFABeNjc
=yQXH
-----END PGP SIGNATURE-----
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]